🤖
Guides
  • Introduction
  • Beginners
    • Getting Started
  • Guides
    • SQLi Walkthrough
    • My First BoF
    • OSCP Buffer Overflow Guide (Windows)
    • Parrot OS customisation
    • Terminal Customisation
    • Video Guides
  • Cheat Sheets
    • Reverse Shells
    • Tunnelling, Pivoting and Proxies
    • SQL Injection
      • WAF Bypass
      • SQLMap
      • DBMS Cheatsheets
        • MSSQL
        • MySQL
        • Oracle
        • SQLite
        • PostgreSQL
      • References
    • Bash Cheat Sheets
      • Terminal
      • Find
      • Grep
      • Sed
      • Awk
      • Xargs
      • System
      • Download
      • Networking
      • Hardware
      • Variable
      • Math
      • Data Manipulation
      • Random
      • Time
      • Condition and Loop
      • Other
    • OSINT
    • Ping Sweeps
  • Methodologies
    • VOIP Checklist
    • OWASP v4 Checklist
    • External Inf
    • Internal Infrastructure
  • Linux
    • Checklist - Linux Priv Esc
  • Windows
    • Checklist - Windows Priv Esc
  • Things to do/look at
Powered by GitBook
On this page

Was this helpful?

  1. Cheat Sheets
  2. SQL Injection

References

PreviousPostgreSQLNextBash Cheat Sheets

Last updated 4 years ago

Was this helpful?

  • Detect SQLi

  • MySQL:

  • MSSQL:

  • ORACLE:

  • POSTGRESQL:

  • Others

  • Second Order:

  • Sqlmap:

Manual SQL Injection Discovery Tips
NetSPI SQL Injection Wiki
PentestMonkey's mySQL injection cheat sheet
Reiners mySQL injection Filter Evasion Cheatsheet
Alternative for Information_Schema.Tables in MySQL
The SQL Injection Knowledge base
EvilSQL's Error/Union/Blind MSSQL Cheatsheet
PentestMonkey's MSSQL SQLi injection Cheat Sheet
PentestMonkey's Oracle SQLi Cheatsheet
PentestMonkey's Postgres SQLi Cheatsheet
SQLi Cheatsheet - NetSparker
Access SQLi Cheatsheet
PentestMonkey's Ingres SQL Injection Cheat Sheet
Pentestmonkey's DB2 SQL Injection Cheat Sheet
Pentestmonkey's Informix SQL Injection Cheat Sheet
SQLite3 Injection Cheat sheet
Ruby on Rails (Active Record) SQL Injection Guide
ForkBombers SQLMap Tamper Scripts Update
SQLi in INSERT worse than SELECT
Manual SQL Injection Tips
Analyzing CVE-2018-6376 – Joomla!, Second Order SQL Injection
Exploiting Second Order SQLi Flaws by using Burp & Custom Sqlmap Tamper
#SQLmap protip @zh4ck